The choice between utilizing a spreadsheet, a purpose-built CMDB, or another GRC tool depends on the Organization’s present and future needs, the amount of asset information, and the number of users and stakeholders requiring access for viewing and updating purposes. Starting with a spreadsheet is viable if you lack an existing portfolio of IT Assets, but it’s crucial to recognize that this may not evolve into a “System of Record” due to inherent limitations in accessing and maintaining spreadsheet data.
However, if establishing a robust, long-term governance measure is your goal, investing in a purpose-built GRC tool is essential. Such a tool would enable you to capture pertinent information, offer role-based access to users, and ideally provide workflow automation to ensure the portfolio remains current with minimal operational overhead.
Leave a Reply